IN THE CLAIMS: 

Please enter the following amendments: 

1. (currently amended) A method of accessing devices on a private network 
via a client on a public network, the method comprising the following steps 
performed by a gateway on the private network: 

accepting a user log- in request from the client prior to ascertaining rights of 
the user, wherein the user log- in request comprises an identification of the user, and 
wherein the user log-in request has a predetermined life span: 

ascertaining rights of a user to access one or more devices on the private 
network: 

receiving a request from the client to access a Web server of a device on the 
private network, wherein the Web server has an address that is valid on the private 
network but is not valid on the public network; 

redirecting the received client request to the Web server of the device on the 
private network; 

scrubbing a Web page served by the Web server in response to the received 
client request, comprising replacing an address in the Web page that is not valid on 
the public network with an address that is valid on the public network; and 

serving the scrubbed Web page to the client. 
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2. (currently amended) The method according to Claim 1, further 
comprising the following steps performed by the gateway after ascertaining rights of 
a user to access one or more devices and p rior to receiving a request from the client 
to access a Web server of the device: 

ascertaining rights of a user to access one or more devices on the private 
network; and 

serving a Web page to the client that identifies each device on the private 
network for which the user has access rights, wherein the Web page includes a link 
to a Web server of each device on the private network for which the user has access 
rights. 

3. (cancelled) 

4. (original) The method according to Claim 2, wherein each link to a Web 
server includes a uniform resource locator (URL) for the gateway that is valid on the 
public network and an identification of a gateway port that is mapped to a 
respective Web server, and wherein each link is configured to send a request to a 
respective Web server via the gateway at an identified gateway port. 

5. (original) The method according to Claim 1, wherein the scrubbing step 
comprises replacing an address in the Web page that is valid only on the private 
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network with a URL for the gateway that is valid on the public network and an 
identification of a gateway port that is mapped to the replaced address. 

6. (original) The method according to Claim 2, wherein the step of serving a 
Web page to the client comprises: 

scanning a range of private network addresses to identify Web servers 

listening on one or more selected ports; 

mapping each identified Web server to a respective gateway port; and 
creating a Web page that contains a respective link to each gateway port for 

each device for which the user has access rights. 

7. (currently amended) A method of accessing devices on a private network 
via a client on a public network, wherein each device includes a Web server having an 
address that is valid on the private network, but is not valid on the public network, 
the method comprising the following steps performed by a gateway on the private 
network: 

accepting a user log- in request from the client prior to ascertaining rights of 
the user, wherein the user log- in request comprises an identification of the user, and 
wherein the log- in request has a predetermined life span; 

ascertaining rights of a user to access one or more devices on the private 
network; 
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serving a Web page to the client that identifies each device on the private 
network for which the user has access rights, wherein the Web page includes a link 
to a Web server of each device on the private network for which the user has access 
rights; 

receiving a request from the client to access a Web server of a device on the 
private network in response to user activation of a link on the Web page; 

redirecting the received client request to the Web server; 

scrubbing a Web page served by the Web server in response to the received 
client request, comprising removing links to Web servers of devices for which the 
user does not have access rights; and 

serving the scrubbed Web page to the client. 

8. (cancelled) 

9. (original) The method according to Claim 7, wherein the scrubbing step 
further comprises replacing an address in the Web page that is not valid on the 
public network with an address that is valid on the public network. 

10. (original)The method according to Claim 7, wherein each link to a Web 
server includes a uniform resource locator (URL) for the gateway that is valid on the 
public network and an identification of a gateway port that is mapped to a 
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respective Web server, and wherein each link is configured to send a request to a 
respective Web server via the gateway at an identified gateway port. 

11. (original) The method according to Claim 7, wherein the step of serving a 
Web page to the client comprises: 

scanning a range of private network addresses to identify Web servers 

listening on one or more selected ports; 

mapping each identified Web server to a respective gateway port; and 
creating a Web page that contains a respective link to each gateway port for 

each device for which the user has access rights. 

12. (currently amended) A method of accessing devices on a private network 
via a client on a public network, wherein each device includes a Web server having an 
address that is valid on the private network, but is not valid on the public network, 
the method comprising the following steps performed by a gateway on the private 
network: 

accepting a user log- in request from the client prior to ascertaining rights of 
the user, wherein the user log- in request comprises an identification of the user, and 
wherein the user log- in request has a predetermined life span: 

ascertaining rights of a user to access one or more devices on the private 
network; 
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serving a Web page to the client that identifies each device on the private 
network for which the user has access rights, wherein the Web page includes a link 
to a Web server of each device on the private network for which the user has access 
rights, wherein each link to a Web server includes a uniform resource locator (URL) 
for the gateway that is valid on the public network and an identification of a 
gateway port that is mapped to a respective Web server, and wherein each link is 
configured to send a request to a respective Web server via the gateway at an 
identified gateway port; 

receiving a request from the client to access a Web server of a device on the 
private network in response to user activation of a link on the Web page; 

redirecting the received client request to the Web server; 

scrubbing a Web page served by the Web server in response to the received 
client request, comprising: 

removing links to Web servers of devices for which the user does not , 

have access rights; and 

replacing an address in the Web page that is not valid on the public 

network with an address that is valid on the public network: and 
serving the scrubbed Web page to the client. 

13. (cancelled) 
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14. (original) The method according to Claim 12, wherein the step of serving a 
Web page to the client comprises: 

scanning a range of private network addresses to identify Web servers 

listening on one or more selected ports; 

mapping each identified Web server to a respective gateway port; and 
creating a Web page that contains a respective link to each gateway port for 

each device for which the user has access rights. 

15. (currently amended) A gateway system that permits access to devices on 
a private network via a client on a public network, comprising: 

means for accepting a user log-in request from the client, wherein the user log- 
in request includes an identification of the user, and wherein the user log- in request 
has a predetermined finite life span: 

means for receiving a request from the client to access a Web server of a 
device on the private network, wherein the Web server has an address that is valid 
on the private network but is not valid on the public network; 

means for redirecting the received client request to the Web server; 

means for scrubbing a Web page served by the Web server in response to the 
received client request, comprising means for replacing an address in the Web page 
that is not valid on the public network with an address that is valid on the public 
network; and 
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means for serving the scrubbed Web page to the client. 

16. (original) The gateway system according to Claim 15, further comprising: 
means for ascertaining rights of a user to access one or more devices on the 

private network; and 

means for serving a Web page to the client that identifies each device on the 
private network for which the user has access rights, wherein the Web page includes 
a link to a Web server of each device on the private network for which the user has 
access rights. 

17. (cancelled) 

18. (original) The gateway system according to Claim 16, wherein each link to 
a Web server includes a uniform resource locator (URL) for the gateway system that 
is valid on the public network and an identification of a gateway system port that is 
mapped to a respective Web server, and wherein each link is configured to send a 
request to a respective Web server via the gateway system at an identified gateway 
system port. 

19. (original) The gateway system according to Claim 15, wherein the means 
for scrubbing a Web page comprises means for replacing an address in the Web page 
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that is valid only on the private network with a URL for the gateway system that is 
valid on the public network and an identification of a gateway system port that is 
mapped to the replaced address. 

20. (original) The gateway system according to Claim 16, wherein the means 
for serving a Web page to the client comprises: 

means for scanning a range of private network addresses to identify Web 
servers listening on one or more selected ports; 

means for mapping each identified Web server to a respective gateway system 
port; and 

means for creating a Web page that contains a respective link to each gateway 
system port for each device for which the user has access rights. 

21. (currently amended) A gateway system that permits access to devices on 
a private network via a client on a public network, wherein each device includes a 
Web server having an address that is valid on the private network, but is not valid 
on the public network, wherein the gateway system comprises: 

means for accepting a user log-in request from the client, wherein the user log- 
in request includes an identification of the user and wherein the user log- in request 
has a predetermined finite life span: 
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means for ascertaining rights of a user to access one or more devices on the 
private network; 

means for serving a Web page to the client that identifies each device on the 
private network for which the user has access rights, wherein the Web page includes 
a link to a Web server of each device on the private network for which the user has 
access rights; 

means for receiving a request from the client to access a Web server of a 
device on the private network, wherein the Web server has an address that is valid 
on the private network but is not valid on the public network; 

means for redirecting the received client request to the Web server; 

means for scrubbing a Web page served by the Web server in response to the 
received client request, comprising means for replacing an address in the Web page 
that is not valid on the public network with an address that is valid on the public 
network; and 

means for serving the scrubbed Web page to the client. 

22. (cancelled) 

2 3. (original) The gateway system according to Claim 21, wherein the means 
for scrubbing a Web page further comprises means for replacing an address in the 
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Web page that is not valid only the public network with an address that is valid on 
the public network. 

24. (original) The gateway system according to Claim 21, wherein each link to 
a Web server includes a uniform resource locator (URL) for the gateway system that 
is valid on the public network and an identification of a gateway system port that is 
mapped to a respective Web server, and wherein each link is configured to send a 
request to a respective Web server via the gateway system at an identified gateway 
system port. 

25. (original) The gateway system according to Claim 21, wherein the means 
for serving a Web page to the client comprises: 

means for scanning a range of private network addresses to identify Web 
servers listening on one or more selected ports; 

means for mapping each identified Web server to a respective gateway system 
port; and 

means for creating a Web page that contains a respective link to each gateway 
system port for each device for which the user has access rights. 

26. (currently amended) A gateway system that permits access to devices on 
a private network via a client on a public network, wherein each device includes a 
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Web server having an address that is valid on the private network, but is not valid 
on the public network, wherein he gateway system comprises: 

means for accepting a user log-in request from the client, wherein the user log- 
in request includes an identification of the user, and wherein the user log-in request 
has a predetermined finite life span; 

means for ascertaining rights of a user to access one or more devices on the 
private network; 

means for serving a Web page to the client that identifies each device on the 
private network for which the user has access rights, wherein the Web page includes 
a link to a Web server of each device on the private network for which the user has 
access rights, wherein each link to a Web server includes a uniform resource locator 
(URL) for the gateway system that is valid on the public network and an 
identification of a gateway system port that is mapped to a respective Web server, 
and wherein each link is configured to send a request to a respective Web server via 
the gateway system at an identified gateway system port; 

means for receiving a request from the client to access a Web server of a 
device on the private network in response to user activation of a link on the Web 
page; 

means for redirecting the received client request to the Web server; and 
means for scrubbing a Web page served by the Web server in response to the 
received client request, comprising: 
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means for removing links to Web servers of devices for which the user 
does not have access rights; and 

means for replacing an address in the Web page that is not valid on the 
public network with an address that is valid on the public network; and 

means for serving the scrubbed Web page to the client. 

27. (cancelled) 

28. (original) The gateway system according to Claim 26, wherein the means 
for serving a Web page to the client comprises: 

means for scanning a range of private network addresses to identify Web 
servers listening on one or more selected ports; 

means for mapping each identified Web server to a respective gateway system 
port; and 

means for creating a Web page that contains a respective link to each gateway 
system port for each device for which the user has access rights. 

29. (currently amended) A computer program product that permits access to 
devices on a private network via a client on a public network, the computer program 
product comprising a computer usable storage medium having computer readable 
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program code embodied in the medium, the computer readable program code 
comprising: 

computer readable program code that accepts a user log-in request from the 
client, wherein the user log- in request comprises an identification of the user, and 
wherein the user log- in request has a predetermined life span: 

computer readable program code that receives a request from the client to 
access a Web server of a device on the private network, wherein the Web server has 
an address that is valid on the private network but is not valid on the public 
network; 

computer readable program code that redirects the received client request to 
the Web server; 

computer readable program code that scrubs a Web page served by the Web 
server in response to the received client request, comprising computer readable 
program code that replaces an address in the Web page that is not valid on the 
public network with an address that is valid on the public network; and 

computer readable program code that serves the scrubbed Web page to the 

client. 

30.(original) The computer program product according to Claim 29, further 
comprising: 
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computer readable program code that ascertains rights of a user to access one 
or more devices on the private network; and 

computer readable program code that serves a Web page to the client that 
identifies each device on the private network for which the user has access rights, 
wherein the Web page includes a link to a Web server of each device on the private 
network for which the user has access rights. 

31. (cancelled) 

32. (original) The computer program product according to Claim 30, wherein 
each link to a Web server includes a uniform resource locator (URL) for a gateway on 
the private network that is valid on the public network and an identification of a 
gateway port that is mapped to a respective Web server, and wherein each link is 
configured to send a request to a respective Web server via the gateway at an 
identified gateway port. 

33. (original) The computer program product according to Claim 29, wherein 
the computer readable program code that scrubs a Web page comprises computer 
readable program code that replaces an address in the Web page that is valid only 
on the private network with a URL for a gateway on the private network that is 
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valid on the public network and an identification of a gateway port that is mapped 
to the replaced address. 

34. (original) The computer program product according to Claim 30, wherein 
the computer readable program code that serves a Web page to the client comprises: 

computer readable program code that scans a range of private network 
addresses to identify Web servers listening on one or more selected ports; 

computer readable program code that maps each identified Web server to a 
respective gateway port; and 

computer readable program code that creates a Web page that contains a 
respective link to each gateway port for each device for which the user has access 
rights. 

35. (currently amended) A computer program product that permits access to 
devices on a private network via a client on a public network, wherein each device 
includes a Web server having an address that is valid on the private network, but is 
not valid on the public network, the computer program product comprising a 
computer usable storage medium having computer readable program code embodied 
in the medium, the computer readable program code comprising: 
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computer readable program code that accepts a user log-in request from the 
client, wherein the user log-in request comprises an identification of the user, and 
wherein the user log-in request has a predetermined life span; 

computer readable program code that ascertains rights of a user to access one 
or more devices on the private network; 

computer readable program code that serves a Web page to the client that 
identifies each device on the private network for which the user has access rights, 
wherein the Web page includes a link to a Web server of each device on the private 
network for which the user has access rights; 

computer readable program code that receives a request from the client to 
access a Web server of a device on the private network in response to user activation 
of a link on the Web page; 

computer readable program code that redirects the received client request to 
the Web server; 

computer readable program code that scrubs a Web page served by the Web 
server in response to the received client request, comprising removing links to Web 
servers of devices for which the user does not have access rights; and 

computer readable program code that serves the scrubbed Web page to the 

client. 

36. (cancelled) 
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37. (original) The computer program product according to Claim 35, wherein 
the computer readable program code that scrubs a Web page further comprises 
computer readable program code that replaces an address in the Web page that is 
not valid on the public network with an address that is valid on the public network. 

38. (original) The computer program product according to Claim 35, wherein 
each link to a Web server includes a uniform resource locator (URL) for a gateway on 
the private network that is valid on the public network and an identification of a 
gateway port that is mapped to a respective Web server, and wherein each link is 
configured to send a request to a respective Web server via the gateway at an 
identified gateway port. 

39. (original) The computer program product according to Claim 35, wherein 
the computer readable program code that serves a Web page to the client comprises: 

computer readable program code that scans a range of private network 
addresses to identify Web servers listening on one or more selected ports; 

computer readable program code that maps each identified Web server to a 
respective port of a gateway on the private network; and 
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computer readable program code that creates a Web page that contains a 
respective link to each gateway port for each device for which the user has access 
rights. 

40. (currently amended) A computer program product that permits access to 
devices on a private network via a client on a public network, wherein each device 
includes a Web server having an address that is valid on the private network, but is 
not valid on the public network, the computer program product comprising a 
computer usable storage medium having computer readable program code embodied 
in the medium, the computer readable program code comprising: 

computer readable program code that accepts a user log-in request from the 
client, wherein the user log- in request comprises an identification of the user, and 
wherein the user log-in request has a predetermined life span; 

computer readable program code that ascertains rights of a user to access one 
or more devices on the private network; 

computer readable program code that serves a Web page to the client that 
identifies each device on the private network for which the user has access rights, 
wherein the Web page includes a link to a Web server of each device on the private 
network for which the user has access rights, wherein each link to a Web server 
includes a uniform resource locator (URL) for the gateway that is valid on the public 
network and an identification of a gateway port that is mapped to a respective Web 
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server, and wherein each link is configured to send a request to a respective Web 
server via the gateway at an identified gateway port; 

computer readable program code that receives a request from the client to 
access a Web server of a device on the private network in response to user activation 
of a link on the Web page; 

computer readable program code that redirects the received client request to 
the Web server; 

computer readable program code that scrubs a Web page served by the Web 
server in response to the received client request, comprising: 

computer readable program code that removes links to Web servers of 
devices for which the user does not have access rights; and 

computer readable program code that replaces an address in the Web 
page that is not valid on the public network with an address that is valid on 
the public network: and 

computer readable program code that serves the scrubbed Web page to 

the client. 

41. (cancelled) 

42. (original) The computer program product according to Claim 40, wherein 
the computer readable program code that serves a Web page to the client comprises: 
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computer readable program code that scans a range of private network 
addresses to identify Web servers listening on one or more selected ports; 

computer readable program code that maps each identified Web server to a 
respective gateway port; and 

computer readable program code that creates a Web page that contains a 
respective link to each gateway port for each device for which the user has access 
rights. 
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